Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2014-8605
HistoryJun 10, 2015 - 6:00 p.m.

CVE-2014-8605

2015-06-1018:00:00
mitre
www.cve.org

6.2 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.6%

JSON

The XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! stores database backup files with predictable names under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to a backup file in administrators/backups/.

Related

cve 1
patchstack 1
nvd 1
prion 1
wpvulndb 1
securityvulns 1
packetstorm 1
cve
cve
CVE-2014-8605
2015-06-10 18:59:02
patchstack
patchstack
WordPress XCloner Plugin <= 3.1.1 - Remote Database Download & Local File Permissions
2014-11-04 00:00:00
nvd
nvd
CVE-2014-8605
2015-06-10 18:59:02
prion
prion
Improper access control
2015-06-10 18:59:00
wpvulndb
wpvulndb
XCloner - Backup and Restore < 3.1.2 - Multiple Vulnerabilities (RCE & LFI)
2014-10-17 00:00:00
securityvulns
securityvulns
Xloner v3.1.2 wordpress plugin authenticated command execution and XSS
2015-06-08 00:00:00
packetstorm
packetstorm
Joomla/WordPress XCloner Command Execution / Password Disclosure
2014-11-07 00:00:00

6.2 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.6%

JSON
Related for CVELIST:CVE-2014-8605
cve1patchstack1nvd1prion1wpvulndb1securityvulns1packetstorm1